Threat Detection and Response Analyst
Costa Rica
Full Time
1 hour ago
No H1B
Key skills
CloudCyber SecurityPythonSplunkBashPowerShell
About this role
Role Overview
- Monitor and analyze security events across network, endpoint, and cloud environments.
- Lead advanced incident investigations, including root cause analysis and remediation coordination on prem and cloud
- Help with Develop and tuning detection logic, SIEM rules, and automated response workflows.
- Perform proactive threat hunting and integrate threat intelligence into detection pipelines.
- Deliver incident reports, trend analysis, and performance metrics to stakeholders.
- Continuously improve detection processes, tools, and coverage to address evolving threats.
- Collaborate with global SOC\IR teams and cross-functional partners to maintain security resilience.
Requirements
- Bachelor’s degree in computer science, Cybersecurity, or related field.
- 5+ years of experience in SOC operations, incident response, or threat detection.
- Expertise with SIEM platforms (e.g., Splunk, Sentinel), EDR tools, and IDS/IPS technologies.
- Strong knowledge of adversary tactics and frameworks (e.g., MITRE ATT&CK).
- Strong Knowledge of cloud infra and security tools design
- Proficiency in scripting or automation (Python, PowerShell, Bash).
- Familiarity with NIST frameworks and compliance standards.
- Good experience in OT is desired
- Proficient in English (written and verbal)
Tech Stack
- Cloud
- Cyber Security
- Python
- Splunk
Benefits
- Flexible work arrangements
- Professional development opportunities